3caac678e22c587908e2529cde33024d[.]zip | Triage

Sharing

General

Target

3caac678e22c587908e2529cde33024d.zip
Size

1.3MB
MD5

4ba6aeb506f9fceb7df5040556a49e4d
SHA1

96b44179ff5d1ff26b31f1b5e90eac549ef90281
SHA256

cea4655e761de3a8d480dd0a62d88234e0bb6f3ac3a91860519bee176406abc4
SHA512

b77d6100bbc45b5e0cb20e65d3e00628a82d58ed3b64adef7b0a589f707205b92e7b3271c7aa37d0ae6b55e1c118cfddf6c11b3361cf1c6fddde2596226a1c88
SSDEEP

24576:uxWjuM9MLBRDSsuEM06XxJyBhkXo3Fww4I6r56EShcY21A2mcYY+WqjR:mVi0v+N06BJynwoO3Shr2tYY+WqjR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c170f17069409eac894e594d540582ffcafc660722e28e0661ec445d9b90d05a

Files

3caac678e22c587908e2529cde33024d.zip
.zip

Password: infected
c170f17069409eac894e594d540582ffcafc660722e28e0661ec445d9b90d05a
.dll windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ